NETGEAR SRX5308 Cross-Site Scripting Vulnerability (CNVD-2023-43020)

The NETGEAR SRX5308 is a VPN firewall appliance from NETGEAR. The NETGEAR SRX5308 suffers from a cross-site scripting vulnerability that originates from incorrect manipulation of the parameter ntp.server1. The vulnerability can be exploited by an attacker to obtain sensitive information such as...

PT-2023-2602 · NetGear · Netgear Srx5308

Name of the Vulnerable Software and Affected Versions: Netgear SRX5308 versions up to 4.3.5-3 Description: A vulnerability has been found in the Web Management Interface of Netgear SRX5308, affecting unknown code of the file scgi-bin/platform.cgi?page=time zone.htm. The manipulation of the...